Cisco Firepower System Software: TCP Retransmission Bypass Vulnerability

Cisco Firepower System Software: TCP Retransmission Bypass Vulnerability

CVE-2018-15443 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass a configured Intrusion Prevention System (IPS) rule that inspects certain types of TCP traffic. The vulnerability is due to incorrect TCP retransmission handling. An attacker could exploit this vulnerability by sending a crafted TCP connection request through an affected device. A successful exploit could allow the attacker to bypass configured IPS rules and allow uninspected traffic onto the network.

Learn more about our Cis Benchmark Audit For Cisco.